Security Engineer III - Mumbai, India - Upstox

Description

Responsibilities:

. Conduct thorough assessments of third-party vendors to identify potential cybersecurity risks. Develop and implement risk management strategies and frameworks for third-party relationships. Collaborate with internal stakeholders to understand business needs and align third-party risk management activities with organizational goals. Perform risk assessments, vulnerability assessments, and security reviews of third-party vendors. Review and analyze security documentation provided by vendors, including policies, procedures, and evidence of security controls. Evaluate and monitor the effectiveness of third-party security controls and make recommendations for improvement. Stay abreast of industry trends, emerging threats, and best practices in third-party risk management and cybersecurity. Provide expertise and guidance to internal teams on third-party risk-related matters. Participate in incident response activities related to third-party security incidents. Prepare and present reports on third-party risk management activities to senior management.

Qualifications:

. Bachelor's degree in Cybersecurity, Information Technology, or a related field. Minimum of 5 years of experience in Cyber Security, with a focus on third-party risk management. In-depth knowledge of cybersecurity principles, best practices, and industry standards. Experience in conducting risk assessments and vulnerability assessments. Strong analytical and problem-solving skills. Excellent communication and interpersonal skills. Relevant certifications such as CISM, or CRISC are highly desirable. Familiarity with regulatory requirements and frameworks related to third-party risk management Psst...

tips on how you can beat the competition:
If you can showcase your abilities to:

• Be self-driven / quick starter
• Have an ownership mindset
• Aggressively drive and deliver results